Scanned pages/files
| Request | Server response | Status |
http://funerarialaprincipal.com/ | HTTP/1.1 302 Found Connection: close Date: Tue, 10 Feb 2015 13:13:09 GMT Location: http://www.funerarialaprincipal.es Server: Apache Content-Length: 218 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.funerarialaprincipal.es/ | 200 OK Content-Length: 5157 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY UYAP-CASTOL ...[4597 bytes skipped]... <br><center><img src="http://3.bp.blogspot.com/-LVbb7KMa6d4/Th1sKdas-xI/AAAAAAAAASQ/M2xyE0ycAQ8/goyang.gif" height="350"></center> <br><center><font color="red" face="Courier New">.:: BLACKUNIX CREW ::.</center> <br><center><font color="red" face="Courier New">.:: AYO GOYANG DUMANG ::.</center> <br><center><b>HACKED BY UYAP-CASTOL</b></center> <td><center> <FONT face="Tahoma" size="5" color="#ff0000">Thanks To :</font><marquee behavior="scroll" direction="left" scrollamount="2" scrolldelay="20" width="50%"><FONT face="Tahoma" size="3" color=" Red">MAQIE | RAMZKIE | Bogel | uyap | XSOUL | ARHY MAHO CORE | Bluetooth | Ryu DLC CYBER| ancha cmd || el-yofro | BIANG KEROX HACKER TEAM | BLACKUNIX CREW | DLC CYBER | NEW GENERATION ...[1115 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.1/jquery.min.js | 200 OK Content-Length: 70843 Content-Type: text/javascript | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js | 200 OK Content-Length: 91342 Content-Type: text/javascript | clean |
http://funerarialaprincipal.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Tue, 10 Feb 2015 13:13:15 GMT Location: http://www.funerarialaprincipal.es Server: Apache Content-Length: 218 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.funerarialaprincipal.es/test404page.js | 404 Not Found Content-Length: 1363 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: funerarialaprincipal.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Tue, 10 Feb 2015 13:13:09 GMT
Location: http://www.funerarialaprincipal.es
Server: Apache
Content-Length: 218
Content-Type: text/html; charset=iso-8859-1
...218 bytes of data.
GET / HTTP/1.1
Host: funerarialaprincipal.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Tue, 10 Feb 2015 13:13:09 GMT
Location: http://www.funerarialaprincipal.es
Server: Apache
Content-Length: 218
Content-Type: text/html; charset=iso-8859-1
...218 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: funerarialaprincipal.com
Referer: http://www.google.com/search?q=funerarialaprincipal.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: funerarialaprincipal.com
Referer: http://www.google.com/search?q=funerarialaprincipal.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=funerarialaprincipal.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://funerarialaprincipal.com/
Result: funerarialaprincipal.com is not infected or malware details are not published yet.
Result: funerarialaprincipal.com is not infected or malware details are not published yet.